Transport Wr11 Xt Firmware@* Security Vulnerabilities and Issues — Transport Wr11 Xt Firmware@* CVE List

Lucene search

DigiTransport Wr11 Xt Firmware*

4 matches found

CVE•added 2021/10/08 3:15 p.m.•56 views

CVE-2021-36767

In Digi RealPort through 4.10.490, authentication relies on a challenge-response mechanism that gives access to the server password, making the protection ineffective. An attacker may send an unauthenticated request to the server. The server will reply with a weakly-hashed version of the server's a...

9.8CVSS9.5AI score0.00243EPSS

CVE•added 2021/10/08 3:15 p.m.•48 views

CVE-2021-35977

An issue was discovered in Digi RealPort for Windows through 4.8.488.0. A buffer overflow exists in the handling of ADDP discovery response messages. This could result in arbitrary code execution.

9.8CVSS9.8AI score0.00677EPSS

CVE•added 2021/10/08 3:15 p.m.•43 views

CVE-2021-35979

An issue was discovered in Digi RealPort through 4.8.488.0. The 'encrypted' mode is vulnerable to man-in-the-middle attacks and does not perform authentication.

8.1CVSS7.9AI score0.00276EPSS

CVE•added 2021/12/10 1:15 p.m.•31 views

CVE-2021-37189

An issue was discovered on Digi TransPort Gateway devices through 5.2.13.4. They do not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in cleartext over an HTTP session.

7.5CVSS7.4AI score0.00187EPSS